[SLACKWARE] archéologie & délire de Cycojesus / 14.1out \o/

cycojesus

mèo lười

Posté le 20-09-2017 à 07:08:03

Reprise du message précédent :

Tue Sep 19 20:49:07 UTC 2017
l/freetype-2.8-x86_64-1.txz: Upgraded.
Reverted due to rendering issues with programs such as Firefox that violate
the Freetype API. We'll revisit this after upstream programs have some time
to catch up.
x/libinput-1.8.2-x86_64-1.txz: Upgraded.
+--------------------------+

Thu Sep 21 01:23:24 UTC 2017
n/samba-4.6.8-x86_64-1.txz: Upgraded.
This is a security release in order to address the following defects:
SMB1/2/3 connections may not require signing where they should. A man in the
middle attack may hijack client connections.
SMB3 connections don't keep encryption across DFS redirects. A man in the
middle attack can read and may alter confidential documents transferred via
a client connection, which are reached via DFS redirect when the original
connection used SMB3.
Server memory information leak over SMB1. Client with write access to a share
can cause server memory contents to be written into a file or printer.
For more information, see:
https://www.samba.org/samba/security/CVE-2017-12150.html
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12150
https://www.samba.org/samba/security/CVE-2017-12151.html
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12151
https://www.samba.org/samba/security/CVE-2017-12163.html
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12163
(* Security fix *)
+--------------------------+

Tue Sep 26 02:37:01 UTC 2017
l/libxslt-1.1.30-x86_64-3.txz: Rebuilt.
Fixed bashism in configure.in that resulted in pkg-config not being used
properly unless /bin/sh was bash. Thanks to Willy Sudiarto Raharjo.
+--------------------------+
Tue Sep 26 00:39:15 UTC 2017
a/util-linux-2.30.2-x86_64-2.txz: Rebuilt.
Renamed old BSD version of strings to "strings-BSD".
ap/cups-filters-1.17.7-x86_64-2.txz: Rebuilt.
Recompiled against poppler-0.59.0 and qpdf-7.0.0.
ap/qpdf-7.0.0-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
d/binutils-2.29.1-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
Don't rename strings to "strings-GNU", but provide a symlink from strings-GNU
to strings in case any user-created scripts are using the name we gave the
GNU version of strings for many years. The GNU version of strings has more
features and is what most scripts expect to find installed. Any existing
scripts that use BSD specific options may need to be patched to use
equivalent GNU options (or to use strings-BSD instead).
d/meson-0.42.1-x86_64-1.txz: Added.
Thanks to Heinz Wiesinger.
d/ninja-1.8.2-x86_64-1.txz: Added.
Thanks to alienBOB.
d/oprofile-1.2.0-x86_64-1.txz: Upgraded.
Compiled against binutils-2.29.1.
d/re2c-1.0.2-x86_64-1.txz: Added.
Thanks to LukenShiro.
kde/calligra-2.9.11-x86_64-16.txz: Rebuilt.
Recompiled against poppler-0.59.0.
l/LibRaw-0.18.5-x86_64-1.txz: Upgraded.
l/libxslt-1.1.30-x86_64-2.txz: Rebuilt.
Be a bit more generous with xsltMaxDepth to avoid a false positive on
infinite recursion. This fixes building the Samba docs.
l/poppler-0.59.0-x86_64-1.txz: Upgraded.
Shared library .so-version bump.
xfce/tumbler-0.2.0-x86_64-2.txz: Rebuilt.
Recompiled against poppler-0.59.0.
+--------------------------+

Fri Sep 29 22:58:54 UTC 2017
ap/cups-filters-1.17.8-x86_64-1.txz: Upgraded.
l/libpng-1.6.34-x86_64-1.txz: Upgraded.
t/tetex-3.0-x86_64-10.txz: Removed.
Thanks to Thomas Esser -- teTeX had a good long run. :-)
t/tetex-doc-3.0-x86_64-10.txz: Removed.
t/texlive-2017.170622-x86_64-1.txz: Added.
Thanks very much to Johannes Schoepfer for the great work on this!
Also thanks to Robby Workman for adjustments and testing.
+--------------------------+

Fri Nov 3 03:31:56 UTC 2017
a/sysvinit-scripts-2.0-noarch-38.txz: Rebuilt.
Check that rc.mysqld is executable before attempting to shut down the
database server. Checking for the mysql.pid is not enough, as /var/run/mysql
might be bind mounted into a container. Thanks to Jakub Jankowski.
ap/cups-2.2.6-x86_64-1.txz: Upgraded.
ap/mariadb-10.2.10-x86_64-1.txz: Upgraded.
This update fixes bugs and security issues.
For more information, see:
https://jira.mariadb.org/browse/MDEV-13819
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10268
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10378
(* Security fix *)
l/expat-2.2.5-x86_64-1.txz: Upgraded.
l/gegl-0.2.0-x86_64-6.txz: Rebuilt.
Replaced deprecated functions in ff-load module. Thanks to Theodore Kilgore.
n/openssl-1.0.2m-x86_64-1.txz: Upgraded.
This update fixes a security issue:
There is a carry propagating bug in the x64 Montgomery squaring procedure.
No EC algorithms are affected. Analysis suggests that attacks against RSA
and DSA as a result of this defect would be very difficult to perform and
are not believed likely. Attacks against DH are considered just feasible
(although very difficult) because most of the work necessary to deduce
information about a private key may be performed offline. The amount of
resources required for such an attack would be very significant and likely
only accessible to a limited number of attackers. An attacker would
additionally need online access to an unpatched system using the target
private key in a scenario with persistent DH parameters and a private
key that is shared between multiple clients.
This only affects processors that support the BMI1, BMI2 and ADX extensions
like Intel Broadwell (5th generation) and later or AMD Ryzen.
For more information, see:
https://www.openssl.org/news/secadv/20171102.txt
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3736
(* Security fix *)
+--------------------------+

Fri Nov 17 00:56:25 UTC 2017
a/dbus-1.12.2-x86_64-1.txz: Upgraded.
a/eject-2.1.5-x86_64-4.txz: Removed.
a/etc-15.0-x86_64-1.txz: Upgraded.
/etc/passwd: Added postfix (UID 91), postdrop (UID 92), dovecot (UID 94),
and dovenull (UID 95).
/etc/group: Added postfix (GID 91), postdrop (GID 92), dovecot (GID 94),
and dovenull (GID 95).
a/hostname-3.18-x86_64-1.txz: Added.
This is the latest version of the hostname utility, broken out into a new
package to get rid of duplication between util-linux and net-tools.
a/kernel-firmware-20171109git-noarch-1.txz: Upgraded.
a/kernel-generic-4.14.0-x86_64-1.txz: Upgraded.
a/kernel-huge-4.14.0-x86_64-1.txz: Upgraded.
a/kernel-modules-4.14.0-x86_64-1.txz: Upgraded.
a/lvm2-2.02.176-x86_64-1.txz: Upgraded.
a/pkgtools-15.0-noarch-1.txz: Upgraded.
Added Postfix and Dovecot to the services setup menu.
a/smartmontools-6.6-x86_64-1.txz: Upgraded.
a/sysvinit-scripts-2.0-noarch-39.txz: Rebuilt.
rc.M: Set the hostname returned by "hostname" with no arguments to be the
FQDN (Fully Qualified Domain Name). Technically, it should work either way
(and mostly does), but in practice there are a few things that either refuse
to work (mostly commercial software), or require additional configuration if
hostname returns the short hostname rather than the FQDN.
rc.M: If rc.sendmail is not present and executable, try rc.postfix.
rc.M: Run rc.dovecot if it is executable.
rc.*: Don't source any init scripts.
a/time-1.8-x86_64-1.txz: Upgraded.
a/util-linux-2.31-x86_64-2.txz: Rebuilt.
Don't add hostname, domainname, dnsdomainname, nisdomainname, or ypdomainname
to the util-linux package. These are provided by the new hostname package.
Allow the eject utility to build.
ap/alsa-utils-1.1.5-x86_64-1.txz: Upgraded.
ap/linuxdoc-tools-0.9.72-x86_64-4.txz: Rebuilt.
Upgraded to DocBook XSL Stylesheets 1.79.2. Thanks to Stuart Winter.
Applied patch to fix bus error with xsltproc. Thanks to ecd102 on LQ.
ap/soma-2.11.3-noarch-1.txz: Upgraded.
ap/sysstat-11.6.1-x86_64-1.txz: Upgraded.
d/Cython-0.27.3-x86_64-1.txz: Upgraded.
d/cmake-3.9.6-x86_64-1.txz: Upgraded.
d/kernel-headers-4.14.0-x86-1.txz: Upgraded.
d/re2c-1.0.3-x86_64-1.txz: Upgraded.
d/scons-3.0.1-x86_64-1.txz: Upgraded.
d/strace-4.20-x86_64-1.txz: Upgraded.
k/kernel-source-4.14.0-noarch-1.txz: Upgraded.
kde/kdelibs-4.14.38-x86_64-1.txz: Upgraded.
l/SDL2_image-2.0.2-x86_64-1.txz: Upgraded.
l/alsa-lib-1.1.5-x86_64-1.txz: Upgraded.
l/alsa-plugins-1.1.5-x86_64-1.txz: Upgraded.
l/at-spi2-atk-2.26.1-x86_64-1.txz: Upgraded.
l/at-spi2-core-2.26.2-x86_64-1.txz: Upgraded.
l/dconf-editor-3.26.2-x86_64-1.txz: Upgraded.
l/glib-networking-2.54.1-x86_64-1.txz: Upgraded.
l/glib2-2.54.2-x86_64-1.txz: Upgraded.
l/gtk+2-2.24.31-x86_64-3.txz: Rebuilt.
Added more patches from upstream git. Thanks to Robby Workman.
l/gtk+3-3.22.26-x86_64-1.txz: Upgraded.
l/harfbuzz-1.7.1-x86_64-1.txz: Upgraded.
l/libplist-2.0.0-x86_64-1.txz: Upgraded.
This update fixes several security issues.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6440
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6439
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6438
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6437
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6436
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6435
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5836
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5835
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5834
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5545
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5209
(* Security fix *)
l/libsoup-2.60.2-x86_64-1.txz: Upgraded.
l/mozilla-nss-3.34-x86_64-1.txz: Upgraded.
Upgraded to nss-3.34 and nspr-4.17.
l/pango-1.40.14-x86_64-1.txz: Upgraded.
l/pygobject3-3.26.1-x86_64-1.txz: Upgraded.
l/sip-4.19.5-x86_64-1.txz: Upgraded.
l/vte-0.50.2-x86_64-1.txz: Upgraded.
n/NetworkManager-1.10.0-x86_64-1.txz: Upgraded.
Use the FQDN (Fully Qualified Domain Name) for the hostname as reported by
"hostname" with no arguments.
n/cyrus-sasl-2.1.26-x86_64-2.txz: Rebuilt.
Create /etc/sasl2 configuration directory.
n/dovecot-2.2.33.2-x86_64-1.txz: Added.
This will be the new IMAP/POP3 server in the next Slackware release.
Thanks to Alan Hicks, Mario Preksavec, and /dev/rob0 for assistance.
n/ethtool-4.13-x86_64-1.txz: Upgraded.
n/gnupg2-2.2.2-x86_64-1.txz: Upgraded.
n/imapd-2.21-x86_64-1.txz: Removed.
n/inetd-1.79s-x86_64-10.txz: Rebuilt.
Do not run inetd (rc.inetd is now shipped non-executable), or open any ports
in inetd.conf by default.
n/iproute2-4.14.1-x86_64-1.txz: Upgraded.
n/libmilter-8.15.2-x86_64-1.txz: Added.
This is a compile-time dependency of Postfix.
n/net-tools-20170208_479bb4a-x86_64-1.txz: Upgraded.
Don't include hostname, domainname, dnsdomainname, nisdomainname,
or ypdomainname. These are provided by the new hostname package.
n/network-scripts-15.0-noarch-1.txz: Upgraded.
Switch to using ip instead of ifconfig and route.
Supports create/destroy of virtual tun/tap interfaces and adding
them to bridges.
Supports additional IP addresses added to interfaces in a way
that's compatible with net-tools.
Thanks to Robby Workman.
n/postfix-3.2.4-x86_64-1.txz: Added.
This will be the default MTA in the next Slackware release. Thanks to
Alan Hicks, Mario Preksavec, and /dev/rob0 for assistance.
n/samba-4.6.10-x86_64-1.txz: Upgraded.
n/sendmail-8.15.2-x86_64-2.txz: Removed.
Moved to /extra.
n/sendmail-cf-8.15.2-noarch-2.txz: Removed.
Moved to /extra.
n/stunnel-5.43-x86_64-1.txz: Upgraded.
n/wireless-tools-29-x86_64-10.txz: Rebuilt.
Use ip instead of ifconfig. Thanks to Robby Workman.
t/texlive-2017.171108-x86_64-1.txz: Upgraded.
Fixes, cleanups, and logging support in texmf_get.sh.
Support for many more languages.
More manpages and info files included.
TeX packages moved to texlive-extra (hosted on slackbuilds.org): cc-pl,
cmexb, cs, ghsystem, kerkis, pl, quran, tipa, and udesoftec.
Tex packages excluded as obsolete: aleph and its support files, and cslatex.
PDF files removed from koma-script docs.
Compiled with --disable-dump-share for better performance.
TeXLive fonts are now optionally available to other system applications
through a fontconfig file (/etc/fonts/conf.avail/09-texlive.conf).
Thanks to Johannes Schoepfer for all of these improvements.
x/bdftopcf-1.1-x86_64-1.txz: Upgraded.
x/intel-gpu-tools-1.20-x86_64-1.txz: Upgraded.
x/libXfont-1.5.3-x86_64-1.txz: Upgraded.
x/libdrm-2.4.88-x86_64-1.txz: Upgraded.
x/libpciaccess-0.14-x86_64-1.txz: Upgraded.
x/mesa-17.2.5-x86_64-1.txz: Upgraded.
xap/gnuplot-5.2.2-x86_64-1.txz: Upgraded.
xap/gucharmap-10.0.3-x86_64-1.txz: Upgraded.
xap/mozilla-firefox-57.0-x86_64-1.txz: Upgraded.
This release contains security fixes and improvements.
For more information, see:
https://www.mozilla.org/security/known-vulnerabilities/firefox.html
(* Security fix *)
xap/network-manager-applet-1.8.6-x86_64-1.txz: Upgraded.
xap/xpaint-2.10.2-x86_64-1.txz: Upgraded.
extra/bash-completion/bash-completion-2.7-noarch-2.txz: Rebuilt.
Applied some patches from upstream git, including one that unclobbers the
rfkill completion from util-linux. Don't clobber mount and umount
completions from util-linux. Thanks to ill323 on LQ for the heads-up.
extra/sendmail/sendmail-8.15.2-x86_64-2.txz: Added.
Moved here from the N series. This is still a solid choice for an MTA, and
probably the most flexible (although it can be difficult to configure - it
has been said that the M4 macro language resembles line noise).
Thanks to Eric Allman and everyone at Sendmail for all the years of work.
extra/sendmail/sendmail-cf-8.15.2-noarch-2.txz: Added.
Moved here from the N series.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.
+--------------------------+

Wed Nov 29 08:15:09 UTC 2017
a/coreutils-8.28-x86_64-2.txz: Rebuilt.
Removed ancient (1992) aliases "dir, vdir, d, v" from the profile scripts.
a/lzlib-1.9-x86_64-1.txz: Added.
a/plzip-1.6-x86_64-1.txz: Added.
ap/man-1.6g-x86_64-3.txz: Removed.
ap/man-db-2.7.6.1-x86_64-1.txz: Added.
This package replaces the good old man package. Thanks to B. Watson.
ap/man-pages-4.14-noarch-2.txz: Rebuilt.
Don't ship a whatis database, since man-db doesn't need one.
ap/mariadb-10.2.11-x86_64-1.txz: Upgraded.
d/git-2.15.1-x86_64-1.txz: Upgraded.
d/python-setuptools-38.2.3-x86_64-1.txz: Upgraded.
x/libXcursor-1.1.15-x86_64-1.txz: Upgraded.
Fix heap overflows when parsing malicious files. (CVE-2017-16612)
It is possible to trigger heap overflows due to an integer overflow
while parsing images and a signedness issue while parsing comments.
The integer overflow occurs because the chosen limit 0x10000 for
dimensions is too large for 32 bit systems, because each pixel takes
4 bytes. Properly chosen values allow an overflow which in turn will
lead to less allocated memory than needed for subsequent reads.
The signedness bug is triggered by reading the length of a comment
as unsigned int, but casting it to int when calling the function
XcursorCommentCreate. Turning length into a negative value allows the
check against XCURSOR_COMMENT_MAX_LEN to pass, and the following
addition of sizeof (XcursorComment) + 1 makes it possible to allocate
less memory than needed for subsequent reads.
For more information, see:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16612
(* Security fix *)
x/libXfont-1.5.3-x86_64-1.txz: Removed.
x/libXfont2-2.0.3-x86_64-1.txz: Upgraded.
Open files with O_NOFOLLOW. (CVE-2017-16611)
A non-privileged X client can instruct X server running under root
to open any file by creating own directory with "fonts.dir",
"fonts.alias" or any font file being a symbolic link to any other
file in the system. X server will then open it. This can be issue
with special files such as /dev/watchdog (which could then reboot
the system).
For more information, see:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16611
(* Security fix *)
x/xfs-1.2.0-x86_64-1.txz: Upgraded.
testing/packages/php-7.1.12-x86_64-2.txz: Rebuilt.
Load mysqlnd.so before mysqli.so in etc/php.ini*. Thanks to KewlCat.
Load libphp7.so in mod_php.conf.example. Thanks to Willy Sudiarto Raharjo.
+--------------------------+